Vulnerability Name:

CVE-2021-35517 (CCN-205307)

Assigned:2021-07-13
Published:2021-07-13
Updated:2023-02-28
Summary:Apache Commons Compress is vulnerable to a denial of service, caused by an out of memory error when allocating large amounts of memory. By persuading a victim to open a specially-crafted TAR archive, a remote attacker could exploit this vulnerability to cause a denial of service condition against services that use Compress' tar package.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2021-35517

Source: security@apache.org
Type: Mailing List, Third Party Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Third Party Advisory
security@apache.org

Source: CCN
Type: Apache Web site
Apache Commons Compress

Source: security@apache.org
Type: Vendor Advisory
security@apache.org

Source: XF
Type: UNKNOWN
apache-cve202135517-dos(205307)

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Not Applicable, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Not Applicable, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: security@apache.org
Type: Mailing List, Patch, Vendor Advisory
security@apache.org

Source: CCN
Type: oss-sec Mailing List, Tue, 13 Jul 2021 04:01:23 +0000
CVE-2021-35517: Apache Commons Compress 1.1 to 1.20 denial of service vulnerability

Source: security@apache.org
Type: Third Party Advisory
security@apache.org

Source: CCN
Type: IBM Security Bulletin 6480413 (Planning Analytics Local)
IBM Planning Analytics Workspace is affected by security vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6482503 (Content Navigator)
IBM Content Navigator is vulnerable to a denial of service vulnerabilty.

Source: CCN
Type: IBM Security Bulletin 6484923 (Spectrum Protect Plus)
Vulnerabilities in Apache Commons and Node.js affect IBM Spectrum Protect Plus

Source: CCN
Type: IBM Security Bulletin 6485153 (Spectrum Control)
Vulnerabilities in Node.js, XStream and Apache Commons affect IBM Spectrum Control

Source: CCN
Type: IBM Security Bulletin 6489683 (WebSphere Application Server Liberty)
Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server Liberty (CVE-2021-33517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6490749 (Tivoli Netcool/OMNIbus)
Multiple vulnerabilities in Apache Commons* affect Tivoli Netcool/OMNIbus WebGUI (CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6492217 (Watson Discovery)
IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Commons Compress

Source: CCN
Type: IBM Security Bulletin 6492617 (i)
Integrated application server and integrated web services for IBM i are affected by CVE-2021-35517 and CVE-2021-36090

Source: CCN
Type: IBM Security Bulletin 6498123 (FileNet Content Manager)
Apache commons-compress security vulnerabilities in IBM Content Manager

Source: CCN
Type: IBM Security Bulletin 6498141 (Liberty for Java)
Multiple Vulnerabilities in Apache Commons Compress affect Liberty for Java for IBM Cloud (CVE-2021-33517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6501221 (Control Center)
Multiple Websphere Vulnerabilities Impact IBM Control Center (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6507013 (Watson Explorer)
Vulnerabilities exist in Watson Explorer (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6509082 (InfoSphere Information Server)
IBM InfoSphere Information Server is affected by a denial of service vulnerability in Apache Commons Compress

Source: CCN
Type: IBM Security Bulletin 6509702 (Compare and Comply)
Multiple vulnerabilities in Apache Commons* affect Tivoli Netcool/OMNIbus WebGUI (CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6516470 (Watson Discovery)
IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Commons Compress

Source: CCN
Type: IBM Security Bulletin 6516772 (Sterling Control Center)
Apache Commons Compress Denial of Service Vulnerability Affects IBM Sterling Control Center (CVE-2021-35517)

Source: CCN
Type: IBM Security Bulletin 6519974 (Log Analysis)
Multiple Vulnerabilities in WebSphere Application Server Liberty affect IBM Operations Analytics - Log Analysis (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6520436 (Match 360)
Security vulnerabilities have been identified in IBM WebSphere Application Server Liberty used by IBM Match 360

Source: CCN
Type: IBM Security Bulletin 6524704 (Planning Analytics)
IBM Planning Analytics and IBM Planning Analytics Workspace are affected by security vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6524930 (Spectrum Control)
Vulnerabilities in Node.js, IBM WebSphere Application Server Liberty, and OpenSSL affect IBM Spectrum Control

Source: CCN
Type: IBM Security Bulletin 6524972 (Virtualization Engine TS7700)
Multiple Vulnerabilities in WebSphere Application Server Liberty affect IBM Virtualization Engine TS7700 (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6525250 (Spectrum Copy Data Management)
Vulnerabilities in PostgreSQL, Apache, Golang Go, and Linux Kernel affect IBM Spectrum Copy Data Management

Source: CCN
Type: IBM Security Bulletin 6525276 (Tivoli Netcool/Impact)
Multiple vulnerabilities in Apache Commons Compress affect IBM Tivoli Netcool Impact (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6525516 (Voice Gateway)
Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server

Source: CCN
Type: IBM Security Bulletin 6525722 (Tivoli Application Dependency Discovery Manager)
Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server & WAS Liberty is vulnerable to Information Exposure

Source: CCN
Type: IBM Security Bulletin 6525756 (NovaLink)
Novalink is impacted by Vulnerabilities in Apache Commons Compress affect WebSphere Application Server (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6526070 (Rational Asset Analyzer)
Rational Asset Analyzer is affected by vulnerabilities in WebSphere Application Server Liberty.

Source: CCN
Type: IBM Security Bulletin 6527136 (License Metric Tool)
Security vulnerabilities in Apache Commons Compress affects IBM License Metric Tool v9.

Source: CCN
Type: IBM Security Bulletin 6527792 (MQ)
The version of IBM WebSphere Liberty shipped with IBM MQ is vulnerable to multiple CVEs (CVE-2021-29842,CVE-2021-33517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6527968 (Business Automation Workflow)
Multiple security vulnerabilities with IBM Content Navigator component in IBM Business Automation Workflow -CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090

Source: CCN
Type: IBM Security Bulletin 6527976 (MessageSight)
A vulnerability in Liberty affects IBM WIoTP MessageGateway (CVE-2021-29842)

Source: CCN
Type: IBM Security Bulletin 6528202 (Monitoring)
Multiple vulnerabilities in IBM Websphere Application Server affect the IBM Performance Management product

Source: CCN
Type: IBM Security Bulletin 6539506 (Cloud Transformation Advisor)
Multiple Security Vulnerabilities Affect IBM Cloud Transformation Advisor

Source: CCN
Type: IBM Security Bulletin 6541298 (Cloud Pak for Automation)
Multiple security vulnerabilities fixed in Cloud Pak for Automation components

Source: CCN
Type: IBM Security Bulletin 6554574 (Security Directory Server Virtual Appliance)
Multiple security vulnerabilities have been identified in IBM WebSphere Application Server Liberty shipped with IBM Security Directory Suite

Source: CCN
Type: IBM Security Bulletin 6555376 (Cognos Command Center)
IBM Cognos Command Center is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6562383 (Spectrum Protect for Virtual Environments)
IBM WebSphere Application Server Liberty vulnerabilities affect IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Virtual Environments, and IBM Spectrum Protect for Space Management (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6562849 (Spectrum Protect Operations Center)
Vulnerabilities in IBM Java Runtime and IBM WebSphere Application Server Liberty affect IBM Operations Center and Client Management Service (CVE-2021-35578, CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6563931 (Cloud Pak for Multicloud Management Monitoring)
IBM Cloud Pak for Multicloud Management Monitoring has applied security fixes for its use of IBM Websphere Liberty (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6570915 (Data Risk Manager)
IBM Data Risk Manager is affected by multiple vulnerabilities including a remote code execution in Spring Framework (CVE-2022-22965)

Source: CCN
Type: IBM Security Bulletin 6574487 (Cloud Private)
Security Vulnerabilities affect IBM Cloud Private - Apache Commons Compress (CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6575543 (InfoSphere Information Server)
Multiple vulnerabilities in WebSphere Application Server Liberty affect IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6592779 (QRadar SIEM)
Apache Commons as used by IBM QRadar SIEM is vulnerable to denial of service (CVE-2021-35515, CVE-2021-35516, CVE-2021-36090, CVE-2021-35517)

Source: CCN
Type: IBM Security Bulletin 6597241 (Cognos Analytics)
IBM Cognos Analytics has addressed multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6597611 (Watson Knowledge Catalog on-prem)
Multiple Vulnerabilities in WebSphere Liberty affecting Watson Knowledge Catalog for IBM Cloud Pak for Data

Source: CCN
Type: IBM Security Bulletin 6601115 (Tivoli Network Manager)
Apache Commons as used by IBM Tivoli Network Manager is vulnerable to denial of service (CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090)

Source: CCN
Type: IBM Security Bulletin 6614553 (Sterling B2B Integrator)
IBM Sterling B2B Integrator vulnerable to multiple vulnerabilities due to Apache Commons Compress

Source: security@apache.org
Type: Patch, Third Party Advisory
security@apache.org

Source: security@apache.org
Type: Patch, Third Party Advisory
security@apache.org

Source: security@apache.org
Type: Patch, Third Party Advisory
security@apache.org

Source: security@apache.org
Type: Patch, Third Party Advisory
security@apache.org

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:apache:commons_compress:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:apache:commons_compress:1.20:*:*:*:*:*:*:*
  • AND
  • cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/omnibus:8.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:license_metric_tool:9.2:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:11.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:11.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect:8.1:*:*:*:virtual_environments:*:*:*
  • OR cpe:/a:ibm:monitoring:8.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_asset_analyzer:6.1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:planning_analytics:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:12.0.0.0:*:deep_analytics:*:analytical_components:*:*:*
  • OR cpe:/a:ibm:cognos_command_center:10.2.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:12.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:messagesight:5.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:i:7.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:mq:9.1.0:*:*:*:continuous_delivery:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_discovery:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:iot_messagesight:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:iot_messagesight:5.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:17.0.0.3:*:*:*:liberty:*:*:*
  • OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:control_center:6.1.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:3.2.1:cd:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_operations_center:8.1.0.000:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.6.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_asset_analyzer:6.1.0.23:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_plus:10.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_private:3.2.2:cd:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.4:*:standard:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.5:*:standard:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.3.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:mq:9.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:sterling_b2b_integrator:6.1.0.0:*:*:*:standard:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_plus:10.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_control:5.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:voice_gateway:1.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:11.0.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:12.0.2.0:*:deep_analytics:*:analytical_components:*:*:*
  • OR cpe:/a:ibm:watson_explorer:12.0.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:12.0.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_discovery:2.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_pak_for_automation:21.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_plus:10.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cloud_pak_for_automation:21.0.2:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11.1.7:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:watson_explorer:11.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_copy_data_management:2.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:cognos_analytics:11.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:planning_analytics_workspace:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:spectrum_protect_for_virtual_environments:8.1.4.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:7987
    P
    		apache-commons-compress-1.21-150200.3.13.4 on GA media (Moderate)
    2023-06-20
    oval:org.opensuse.security:def:6118
    P
    		Security update for ImageMagick (Moderate) (in QA)
    2022-08-30
    oval:org.opensuse.security:def:95340
    P
    		Security update for permissions (Important)
    2022-08-03
    oval:org.opensuse.security:def:3364
    P
    		shadow-4.2.1-34.20 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94908
    P
    		gnome-settings-daemon-41.0-150400.1.8 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94994
    P
    		apache-commons-compress-1.21-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:4568
    P
    		Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)
    2022-04-13
    oval:org.opensuse.security:def:101621
    P
    		Security update for ldb (Low) (in QA)
    2022-04-13
    oval:org.opensuse.security:def:111939
    P
    		apache-commons-compress-1.21-1.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:4499
    P
    		Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP5) (Important)
    2021-10-12
    oval:org.opensuse.security:def:105505
    P
    		apache-commons-compress-1.21-1.2 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:110999
    P
    		Security update for apache-commons-compress (Important)
    2021-08-10
    oval:org.opensuse.security:def:102053
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:65588
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:117801
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:74725
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:108287
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:101795
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:65657
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:5792
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:75949
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:108719
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:66881
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:111649
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:76275
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:67207
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    oval:org.opensuse.security:def:74656
    P
    		Security update for apache-commons-compress (Important)
    2021-08-05
    BACK
    apache commons compress 1.1
    apache commons compress 1.20
    ibm i 7.2
    ibm tivoli netcool/impact 7.1.0
    ibm tivoli netcool/omnibus 8.1.0
    ibm license metric tool 9.2
    ibm i 7.3
    ibm watson explorer 11.0.0.3
    ibm watson explorer 11.0.1
    ibm spectrum protect 8.1
    ibm monitoring 8.1.4
    ibm infosphere information server 11.7
    ibm qradar security information and event manager 7.3
    ibm rational asset analyzer 6.1.0.0
    ibm planning analytics 2.0
    ibm watson explorer 12.0.0.0
    ibm cognos command center 10.2.4.1
    ibm watson explorer 12.0.1
    ibm messagesight 5.0.0.1
    ibm i 7.4
    ibm mq 9.1.0
    ibm spectrum control 5.3.1
    ibm spectrum control 5.3.2
    ibm spectrum control 5.3.3
    ibm spectrum control 5.3.0.1
    ibm spectrum protect for virtual environments 8.1.0.0
    ibm watson discovery 2.0.0
    ibm iot messagesight 2.0
    ibm iot messagesight 5.0.0.0
    ibm websphere application server 17.0.0.3
    ibm tivoli application dependency discovery manager 7.3.0.3
    ibm control center 6.1.3.0
    ibm cloud private 3.2.1 cd
    ibm qradar security information and event manager 7.4 -
    ibm spectrum protect operations center 8.1.0.000
    ibm log analysis 1.3.5.3
    ibm log analysis 1.3.6.0
    ibm rational asset analyzer 6.1.0.23
    ibm filenet content manager 5.5.4
    ibm spectrum protect plus 10.1.6
    ibm cloud private 3.2.2 cd
    ibm spectrum control 5.3.4
    ibm spectrum control 5.3.5
    ibm spectrum control 5.3.6
    ibm spectrum control 5.3.7
    ibm log analysis 1.3.6.1
    ibm mq 9.2.0
    ibm sterling b2b integrator 6.1.0.0
    ibm spectrum protect plus 10.1.7
    ibm spectrum control 5.4.1
    ibm voice gateway 1.0.7
    ibm watson explorer 11.0.2.0
    ibm watson explorer 12.0.2.0
    ibm watson explorer 12.0.2.2
    ibm watson explorer 12.0.3.0
    ibm watson discovery 2.2.1
    ibm cloud pak for automation 21.0.1
    ibm spectrum protect plus 10.1.8
    ibm cloud pak for automation 21.0.2 -
    ibm filenet content manager 5.5.6
    ibm filenet content manager 5.5.7
    ibm cognos analytics 11.2.0
    ibm cognos analytics 11.1.7
    ibm watson explorer 11.0.0.0
    ibm spectrum copy data management 2.2.13
    ibm cognos analytics 11.2.1
    ibm planning analytics workspace 2.0
    ibm spectrum protect for virtual environments 8.1.4.0